-
公开(公告)号:US07698442B1
公开(公告)日:2010-04-13
申请号:US11072069
申请日:2005-03-03
申请人: Sathvik Krishnamurthy , Matthew J. Pauker , Guido Appenzeller , Terence Spies , David S. Thompson , Lucas C. Ryan
发明人: Sathvik Krishnamurthy , Matthew J. Pauker , Guido Appenzeller , Terence Spies , David S. Thompson , Lucas C. Ryan
IPC分类号: G06F15/16 , G06F15/173 , G06F11/00
CPC分类号: G06F21/51 , G06F2221/2119 , H04L63/1483
摘要: A URL verification service is provided that is used to evaluate the trustworthiness of universal resource locators (URLs). As a user browses the world wide web, a URL verification client captures a URL associated with a web page of unknown authenticity. The URL verification client transmits the captured URL to a URL verification server. The URL verification server compares the URL to actively maintained whitelist and blacklist information. The server also uses the URL and a user-supplied or automatically-extracted brand to query a search engine. The URL verification server processes the response of the search engine to the search engine queries and the results of cache and whitelist and blacklist comparisons to determine whether the captured URL is legitimately associated with the brand. The results of the URL evaluation process are transmitted from the URL verification server to the URL verification client, which notifies user.
摘要翻译: 提供了URL验证服务,用于评估通用资源定位符(URL)的可信赖性。 当用户浏览万维网时,URL验证客户端会捕获与未知真实性的网页相关联的网址。 URL验证客户端将捕获的URL发送到URL验证服务器。 URL验证服务器将URL与主动维护的白名单和黑名单信息进行比较。 服务器还使用URL和用户提供或自动提取的品牌来查询搜索引擎。 URL验证服务器处理搜索引擎对搜索引擎查询的响应以及缓存和白名单和黑名单比较的结果,以确定捕获的URL是否与品牌合法关联。 URL评估过程的结果从URL验证服务器发送到通知用户的URL验证客户端。
-
公开(公告)号:US08996485B1
公开(公告)日:2015-03-31
申请号:US11085360
申请日:2005-03-21
CPC分类号: G06F21/30 , G06F21/50 , G06F2221/2115 , G06F2221/2119 , H04L63/1483
摘要: A user who is browsing the web may use a web site verification service to ascertain whether a web site that appears to be associated with a trusted entity is actually associated with that entity. The web site verification service retains the URL of an unauthenticated web site. The user types a text string naming the entity that the user believes should be associated with the web site into a text box. A database such as an internet search engine database or a database containing a list of trusted entities and their URLs may be queried using the user-supplied text string. The retained URL may be compared to the resulting list of URLs. If the retained URL does not match one of the URLs in the query results, the user may be warned that the web site does not appear to be associated with the trusted entity.
摘要翻译: 正在浏览网络的用户可以使用网站验证服务来确定似乎与可信实体相关联的网站是否实际上与该实体相关联。 网站验证服务保留未经身份验证的网站的URL。 用户键入将用户认为应该与网站相关联的实体命名为文本框的文本字符串。 可以使用用户提供的文本字符串查询诸如因特网搜索引擎数据库或包含可信实体及其URL的列表的数据库。 可以将保留的URL与结果的URL列表进行比较。 如果保留的URL与查询结果中的一个URL不匹配,则可能会警告用户该网站似乎不与可信实体相关联。
-
3.发明授权公开(公告)号:US07769820B1
公开(公告)日:2010-08-03
申请号:US11173415
申请日:2005-06-30
申请人: Terence Spies , Matthew J. Pauker , Rishi R. Kacker , Guido Appenzeller , Sathvik Krishnamurthy , David S. Thompson
发明人: Terence Spies , Matthew J. Pauker , Rishi R. Kacker , Guido Appenzeller , Sathvik Krishnamurthy , David S. Thompson
IPC分类号: G06F15/16
CPC分类号: H04L63/08 , H04L63/166
摘要: A URL verification service is provided that is used to evaluate the trustworthiness of universal resource locators (URLs). As a user browses the world wide web, the URL for a web page to which the user is browsing is captured by the service. The URL has a second level domain corresponding to a web site. The URL verification service identifies a proposed brand that should be associated with the URL if the URL is trustworthy. The proposed brand and the second level domain are used as database queries to query a database such as a search engine database. The results of the database query are processed to determine whether the URL is legitimately associated with the URL. To ensure that the proposed brand is identified accurately, the URL verification service gathers brand information using web page content, secure sockets layer certificate content, or other web site attributes.
摘要翻译: 提供了URL验证服务,用于评估通用资源定位符(URL)的可信赖性。 当用户浏览万维网时,用户正在浏览的网页的URL由服务捕获。 URL具有对应于网站的第二级域名。 如果URL值得信赖,则URL验证服务会识别与URL相关联的建议品牌。 建议的品牌和二级域用作数据库查询来查询诸如搜索引擎数据库之类的数据库。 处理数据库查询的结果以确定URL是否与URL合法关联。 为了确保提出的品牌被准确地识别,URL验证服务使用网页内容,安全套接字层证书内容或其他网站属性来收集品牌信息。
-
4.发明授权Universal resource locator verification service with cross-branding detection 有权通用资源定位器验证服务,具有跨品牌检测公开(公告)号:US08079087B1
公开(公告)日:2011-12-13
申请号:US11314064
申请日:2005-12-20
申请人: Terence Spies , Matthew J. Pauker , Rishi R. Kacker , Guido Appenzeller , Sathvik Krishnamurthy
发明人: Terence Spies , Matthew J. Pauker , Rishi R. Kacker , Guido Appenzeller , Sathvik Krishnamurthy
IPC分类号: G06F7/04
CPC分类号: G06F17/30873 , G06F21/51 , G06F2221/2119
摘要: A URL verification service is provided that is used to evaluate the trustworthiness of universal resource locators (URLs). As a user browses the world wide web, the URL for a web page to which the user is browsing is evaluated. A brand and a second level domain portion may be extracted from the URL and used as search engine inputs in evaluating the trustworthiness of the URL. The content of the web page can also be analyzed. Page elements may be extracted from the web page and compared to page elements in a brand indicator table to identify page brands associated with the web page. The brand extracted from the URL is compared to the page brands to detect cross-branding. If cross-branding is detected, the URL verification service helps to prevent the user from submitting sensitive information over the internet.
摘要翻译: 提供了URL验证服务,用于评估通用资源定位符(URL)的可信赖性。 当用户浏览万维网时,将评估用户正在浏览的网页的URL。 可以从URL中提取品牌和第二级域部分,并在评估URL的可信度时用作搜索引擎输入。 也可以分析网页的内容。 页面元素可以从网页提取并与品牌指标表中的页面元素进行比较,以识别与网页相关联的页面品牌。 将从URL中提取的品牌与页面品牌进行比较,以检测跨品牌。 如果检测到交叉品牌,则URL验证服务有助于防止用户通过互联网提交敏感信息。
-
公开(公告)号:US07103911B2
公开(公告)日:2006-09-05
申请号:US10688019
申请日:2003-10-17
CPC分类号: H04L47/10 , H04L9/0847 , H04L9/088 , H04L9/3073 , H04L47/20 , H04L63/0442
摘要: A system is provided that uses identity-based encryption (IBE) to allow a sender to securely convey information in a message to a recipient over a communications network. IBE public key information may be used to encrypt messages and corresponding IBE private key information may be used to decrypt messages. The IBE private keys may be provided to message recipients by an IBE private key generator. The IBE private key generator and the recipients who obtain their IBE private keys from that generator form a district. District policy information may be provided by the IBE private key generator that specifies which encryption and communications protocols are used by the district. The district policy information may also specify which authentication protocols are used by the district and may set forth how content-based protocols are implemented. This information may be used by senders in sending messages to recipients.
摘要翻译: 提供了一种使用基于身份的加密(IBE)来允许发送者通过通信网络将消息中的信息安全地传递给接收者的系统。 IBE公钥信息可以用于加密消息,并且可以使用相应的IBE私钥信息来解密消息。 IBE私钥可以由IBE私钥生成器提供给消息收件人。 IBE私钥生成器和从该生成器获取IBE私钥的接收者组成一个区域。 区域政策信息可以由IBE私钥生成器提供,其指定该区域使用哪些加密和通信协议。 区政策信息还可以指定区使用哪些认证协议,并且可以阐述如何实现基于内容的协议。 发信人可以使用此信息向收件人发送消息。
-
公开(公告)号:US20100161984A1
公开(公告)日:2010-06-24
申请号:US12714010
申请日:2010-02-26
CPC分类号: H04L63/0442 , H04L9/083 , H04L9/3073 , H04L63/08 , H04L2209/60 , H04L2209/76
摘要: Systems and methods for secure messaging are provided. A sender may encrypt content and send the encrypted content to a recipient over a communications network. The encrypted content may be decrypted for the recipient using a remote decryption service. Encrypted message content may be placed into a markup language form. Encrypted content may be incorporated into the form as a hidden form element. Form elements for collecting recipient credential information such as username and password information may also be incorporated into the form. At the recipient, the recipient may use the form to provide recipient credential information to the remote decryption service. The recipient may also use the form to upload the encrypted content from the form to the decryption service. The decryption service may provide the recipient with access to a decrypted version of the uploaded content over the communications network.
摘要翻译: 提供了安全消息传递的系统和方法。 发送者可以加密内容,并通过通信网络将加密的内容发送给接收者。 可以使用远程解密服务为接收者解密加密内容。 加密的消息内容可以被放置成标记语言形式。 加密内容可以作为隐藏表单元素合并到表单中。 收集凭证信息(如用户名和密码信息)的表单元素也可以并入表单中。 在接收方,收件人可以使用该表单向远程解密服务提供接收者凭证信息。 收件人还可以使用表格将加密的内容从表单上传到解密服务。 解密服务可以通过通信网络向接收者提供对已上传内容的解密版本的访问。
-
公开(公告)号:US07266847B2
公开(公告)日:2007-09-04
申请号:US10744851
申请日:2003-12-22
IPC分类号: H04L29/00
CPC分类号: H04L63/0442 , H04L9/083 , H04L9/3073 , H04L63/08 , H04L2209/60 , H04L2209/76
摘要: Systems and methods for secure messaging are provided. A sender may encrypt content and send the encrypted content to a recipient over a communications network. The encrypted content may be decrypted for the recipient using a remote decryption service. Encrypted message content may be placed into a markup language form. Encrypted content may be incorporated into the form as a hidden form element. Form elements for collecting recipient credential information such as username and password information may also be incorporated into the form. At the recipient, the recipient may use the form to provide recipient credential information to the remote decryption service. The recipient may also use the form to upload the encrypted content from the form to the decryption service. The decryption service may provide the recipient with access to a decrypted version of the uploaded content over the communications network.
摘要翻译: 提供了安全消息传递的系统和方法。 发送者可以加密内容,并通过通信网络将加密的内容发送给接收者。 可以使用远程解密服务为接收者解密加密内容。 加密的消息内容可以被放置成标记语言形式。 加密内容可以作为隐藏表单元素合并到表单中。 收集凭证信息(如用户名和密码信息)的表单元素也可以并入表单中。 在接收方,收件人可以使用该表单向远程解密服务提供接收者凭证信息。 收件人还可以使用表格将加密的内容从表单上传到解密服务。 解密服务可以通过通信网络向接收者提供对已上传内容的解密版本的访问。
-
公开(公告)号:US08171563B2
公开(公告)日:2012-05-01
申请号:US12714010
申请日:2010-02-26
IPC分类号: H04L29/00
CPC分类号: H04L63/0442 , H04L9/083 , H04L9/3073 , H04L63/08 , H04L2209/60 , H04L2209/76
摘要: Systems and methods for secure messaging are provided. A sender may encrypt content and send the encrypted content to a recipient over a communications network. The encrypted content may be decrypted for the recipient using a remote decryption service. Encrypted message content may be placed into a markup language form. Encrypted content may be incorporated into the form as a hidden form element. Form elements for collecting recipient credential information such as username and password information may also be incorporated into the form. At the recipient, the recipient may use the form to provide recipient credential information to the remote decryption service. The recipient may also use the form to upload the encrypted content from the form to the decryption service. The decryption service may provide the recipient with access to a decrypted version of the uploaded content over the communications network.
摘要翻译: 提供了安全消息传递的系统和方法。 发送者可以加密内容,并通过通信网络将加密的内容发送给接收者。 可以使用远程解密服务为接收者解密加密内容。 加密的消息内容可以被放置成标记语言形式。 加密内容可以作为隐藏表单元素合并到表单中。 收集凭证信息(如用户名和密码信息)的表单元素也可以并入表单中。 在接收方,收件人可以使用该表单向远程解密服务提供接收者凭证信息。 收件人还可以使用表格将加密的内容从表单上传到解密服务。 解密服务可以通过通信网络向接收者提供对已上传内容的解密版本的访问。
-
公开(公告)号:US07698745B2
公开(公告)日:2010-04-13
申请号:US11888290
申请日:2007-07-30
IPC分类号: H04L29/00
CPC分类号: H04L63/0442 , H04L9/083 , H04L9/3073 , H04L63/08 , H04L2209/60 , H04L2209/76
摘要: Systems and methods for secure messaging are provided. A sender may encrypt content and send the encrypted content to a recipient over a communications network. The encrypted content may be decrypted for the recipient using a remote decryption service. Encrypted message content may be placed into a markup language form. Encrypted content may be incorporated into the form as a hidden form element. Form elements for collecting recipient credential information such as username and password information may also be incorporated into the form. At the recipient, the recipient may use the form to provide recipient credential information to the remote decryption service. The recipient may also use the form to upload the encrypted content from the form to the decryption service. The decryption service may provide the recipient with access to a decrypted version of the uploaded content over the communications network.
摘要翻译: 提供了安全消息传递的系统和方法。 发送者可以加密内容,并通过通信网络将加密的内容发送给接收者。 可以使用远程解密服务为接收者解密加密内容。 加密的消息内容可以被放置成标记语言形式。 加密内容可以作为隐藏表单元素合并到表单中。 收集凭证信息(如用户名和密码信息)的表单元素也可以并入表单中。 在接收方,收件人可以使用该表单向远程解密服务提供接收者凭证信息。 收件人还可以使用表格将加密的内容从表单上传到解密服务。 解密服务可以通过通信网络向接收者提供对已上传内容的解密版本的访问。
-
公开(公告)号:US08301889B1
公开(公告)日:2012-10-30
申请号:US13040050
申请日:2011-03-03
IPC分类号: H04L9/32
CPC分类号: H04L9/083 , H04L9/3073 , H04L9/321 , H04L2209/60
摘要: A system is provided that uses cryptographic techniques to support secure messaging between senders and recipients. A sender may encrypt a message for a recipient using the recipient's public key. The sender may send the encrypted message to the message address of a given recipient. A server may be used to decrypt the encrypted message for the recipient, so that the recipient need not install a decryption engine on the recipient's equipment.
摘要翻译: 提供了一种使用加密技术来支持发件人和收件人之间的安全通讯的系统。 发件人可以使用收件人的公开密钥对收件人的邮件进行加密。 发送者可以将加密的消息发送到给定接收者的消息地址。 可以使用服务器对接收者的加密消息进行解密,使得接收者不需要在接收者的设备上安装解密引擎。
-
-
-
-
-
-
-
-
-
搜索结果
53 条记录 (耗时 0.026 秒)
